https://stackoverflow.com/questions/14514574
italiano
english
français
española
中国
日本の
العربية
Deutsch
한국어
Português
RussianUser Ollydbg API Finder API from here: http://tuts4you.com/download.php?view.24
Then put a breakpoint in CreateThreadEx or CreateThread API, then goto stack trace window (CTRL + K)
Find caller of CreateThread and you'll find it's parameters, then you can find function that is being passed to CreateThread API, then put breakpoint on that function and let CreateThread API finish (press RUN), you'll be landed on the function that's being created via CreateThread and you can analyze it. Also if your thread is a dll put breakpoint on LoadLibraryEx API.
